Welcome to MalwareRemoval.com,
What if we told you that you could get malware removal help from experts, and that it was 100% free? MalwareRemoval.com provides free support for people with infected computers. Our help, and the tools we use are always 100% free. No hidden catch. We simply enjoy helping others. You enjoy a clean, safe computer.

Malware Removal Instructions

Assistance request - malware, worms, spyware, viruses,...

MalwareRemoval.com provides free support for people with infected computers. Using plain language that anyone can understand, our community of volunteer experts will walk you through each step.

Assistance request - malware, worms, spyware, viruses,...

Unread postby Andrei0 » July 16th, 2017, 8:08 am

Hello All,

After countless of trials to clean all viruses, malware, spyware, worms etc from my computer via multiple cleaning tools, I had to come here to ask for assistance if someone would be so kind to please help. Few of recognized problems I am facing are (Lenovo, Windows 10 64bit, 3.4 ghz, 32 gb ram):

1. slow performance of computer particularly but not only on start up or reboot after desktop already appears
2. a lot of unwanted pops up. Some as stand alone applications but majority of them inside web browsers (both Firefox which i use in 99% of times and IE)
3. I am being forced to open particular link via IE while I want it to be opened via Firefox even if Firefox is set to default browser
4. In MS Office 2013 Pro (particularly but not only Excel and Outlook) i cannot even open hyperlinks due to error message saying they cannot be opened.
5. High quantity, talking about thousands of very weird entries (referring to their names) in Registry Editor similar to: G490890HJH23407FDGHHD0898904B
6. High quantity of Registry Editor entries related to the applications I have never installed or uninstalled long time ago. Just like in 5th problem, neither CCleaner nor Abexo helps.
7. Firefox is shouting down automatically. Destroying to me immediately all the work I am doing and all currently opened tabs. Since I am using IE extremely rarely, I haven't noticed this problem in IE.
8. Large ''addon corruption'' errors in Firefox causing it to freeze.
9. My internal hard drive is C and it contains three ''Program'' folders: Program Files, Program Files (x86), Program Data. I would like to separate this 9th problem on three different subproblems:

9.1 Folder ''Program Files'' was recently and always in the past named in local language and not english language. My Windows is in local language. I haven't been changing the language and it seems like some virus/malware/spyware/worm/etc renamed it to English language term. Updating of Windows didn't cause this.

9.2 Folder ''ProgramData'' was previously ''Program Data''

9.3 All three folders are all the time getting added new subfolders that I don't install on my own, neither do I recognize them.

10. It happened that fonts of desktop icons got completely changed also: style, size. Even icons' size got changed
11. New applications, most likely malware, are being automatically installed all the time.
12. Windows Defender is all the time reporting problems but very few amount (e.g. 2).
13. Both Firefox and IE windows are occuring automatically to unwanted websites. (i believe i partially mentioned this in problem number 2)
etc - been noticing more problems also.

I tried to clean up everything with tools i found but nothing helps. Your assistance would be highly appreciated.

LOGS: FRST.txt and Addition.txt logs are attached to this post. I also attach Shortcut log which was also produced by your FRST64 software, even if Instructions post doesn't ask for it.

Thank you very much in advance.
You do not have the required permissions to view the files attached to this post.
Andrei0
Active Member
 
Posts: 3
Joined: July 16th, 2017, 7:24 am
Advertisement
Register to Remove

Re: Assistance request - malware, worms, spyware, viruses,..

Unread postby pgmigg » July 16th, 2017, 3:05 pm

Hello Andrei0,

Welcome to the forum! :)

I am pgmigg and I'll be helping you with any malware problems.

Before we begin, please read and follow these important guidelines, so things will proceed smoothly.
  1. The instructions being given are for YOUR computer and system only!
    Using these instructions on a different computer can cause damage to that computer and possibly render it inoperable!
  2. You must have Administrator rights, permissions for this computer.
  3. DO NOT run any other fix or removal tools unless instructed to do so!
  4. DO NOT install any other software (or hardware) during the cleaning process until we are done as well as
    DO NOT Remove, or Scan with anything on your system unless I ask. This adds more items to be researched.
    Extra Additions and Removals of files make the analysis more difficult.
  5. Only post your problem at (1) one help site. Applying fixes from multiple help sites can cause problems.
  6. Print each set of instructions if possible - your Internet connection will not be available during some fix processes.
  7. Your security programs may give warnings for some of the tools I will ask you to use. Be assured, any links I give are safe.
  8. Only reply to this thread, do not start another one. Please, continue responding, until I give you the "All Clean!" :cheers:
    Absence of symptoms does not mean that everything is clear.

I am currently reviewing your logs and will return, as soon as possible, with additional instructions. In the meantime...

Note: If you haven't done so already, please read this topic ALL USERS OF THIS FORUM MUST READ THIS FIRST where the conditions for receiving help here are explained.

Please read all instructions carefully before executing and perform the steps, in the order given.
lf you have any questions or problems executing these instructions, <<STOP>> do not proceed, post back with the question or problem.

Please be aware that removing Malware is a potentially hazardous undertaking. I will take care not to knowingly suggest courses of action that might damage your computer. However it is impossible for me to foresee all interactions that may happen between the software on your computer and those we'll use to clear you of infection, and I cannot guarantee the safety of your system. It is possible that we might encounter situations where the only recourse is to re-format and re-install your operating system, or to necessitate you taking your computer to a repair shop.

Because of this, I advise you to backup any personal files and folders before you start


Failure to post replies within 72 hours will result in this thread being closed
User avatar
pgmigg
MRU Teacher
MRU Teacher
 
Posts: 3541
Joined: July 8th, 2008, 1:25 pm
Location: GMT-05:00

Re: Assistance request - malware, worms, spyware, viruses,..

Unread postby pgmigg » July 16th, 2017, 3:14 pm

Hello Andrei0,

Step 1.
Run CKScanner
  1. Please download CKScanner from here
  2. Important: - Save it to your Desktop.
  3. Double-click CKScanner.exe and click Search For Files.
  4. After a very short time, when the cursor hourglass disappears, click Save List To File.
  5. A message box will verify the file saved.
  6. Double-click the CKFiles.txt icon on your Desktop and copy/paste the contents in your next reply.

Step 2.
TSG - SysInfo utility
  1. Please download SysInfo.exe and save it to your Desktop.
  2. Right click SysInfo.exe and select "Run As Administrator" to run it... if UAC prompts, please allow it.
  3. The small square window will be opened with already highlighted text - please right click on it, select Copy and then paste it in your next post.

Then please tell me:
  • Is this computer used for business or educational purposes and/or connected to a business or educational network?
    I need to know it - so I can provide the proper instructions.
  • Andrei0 wrote:My Windows is in local language.
    What system language your Windows is used exactly?

Please post each log separately to prevent it being cut off by the forum post size limiter.
Check each after you've posted it to make sure it's all present, if any log is cut off you'll have to post it in sections...

Don't post anything as attachments unless I will ask you about it specifically!

Please include in your next reply:
  1. Do you have any problems executing the instructions?
  2. Contents of CKFiles.txt log file
  3. Contents of TSG - SysInfo utility
  4. Answers to my questions related to type of using of your computer and system language of your Windows

Thanks,
pgmigg

Failure to post replies within 72 hours will result in this thread being closed
User avatar
pgmigg
MRU Teacher
MRU Teacher
 
Posts: 3541
Joined: July 8th, 2008, 1:25 pm
Location: GMT-05:00

Re: Assistance request - malware, worms, spyware, viruses,..

Unread postby Andrei0 » July 16th, 2017, 4:17 pm

Before I start following your reply I would like to add the following note in this paragraph: After I had posted my previous message, I wanted to edit it to add additional note. There was no Edit button and according to the terms of service of this forum (also same says in the post you pointed me to for first time users) it might not be allowed to make two messages in a row. So all I want to still say is that in attached 3 files in my previous message I noticed some lines that contain ''my'' local language and not English one. If you need any translations, please let me know and I will translate for you. Google translator might not be accurate. So I just wanted to say to tell me what to translate to English and I will do so.

CKScanner 2.5 - Additional Security Risks - These are not necessarily bad
scanner sequence 3.MN.11.HXLBB0
----- EOF -----


Tech Support Guy System Info Utility version 1.0.0.4
OS Version: Microsoft Windows 10 Pro, 64 bit
Processor: Intel(R) Core(TM) i7-4770 CPU @ 3.40GHz, Intel64 Family 6 Model 60 Stepping 3
Processor Count: 8
RAM: 32692 Mb
Graphics Card: NVIDIA GeForce GTX 750, 1024 Mb
Hard Drives: C: 450 GB (384 GB Free);
Motherboard: LENOVO, SHARKBAY
Antivirus: Windows Defender, Enabled and Updated

You told me to paste each log separately but according to first time user post instructions (post that all new members should read) I am assuming that both two logs must be still inside the same post but separated. They are in this message.

I used computer for many different purposes, always for myself only - I am the only user. Major purposes of usage are ''classical'' browsing of internet websites (e.g. youtube for listening music) and much more serious business related work - trading with financial assets.

System language is Slovenian.

I didn't have any problems with executing those two programs or saving/copying the content from them.
Andrei0
Active Member
 
Posts: 3
Joined: July 16th, 2017, 7:24 am

Re: Assistance request - malware, worms, spyware, viruses,..

Unread postby pgmigg » July 17th, 2017, 10:57 am

Hello Andrei0,

Business Use
I used computer for many different purposes, always for myself only - I am the only user. Major purposes of usage are ''classical'' browsing of internet websites (e.g. youtube for listening music) and much more serious business related work - trading with financial assets.


It appears you are using your computer for business purposes.

May I draw your attention to the topic: ALL USERS OF THIS FORUM MUST READ THIS FIRST, which you should have read before posting for help.

The section here explains why we do not offer help for such computers. Thank you for your understanding.

This topic is now closed.
User avatar
pgmigg
MRU Teacher
MRU Teacher
 
Posts: 3541
Joined: July 8th, 2008, 1:25 pm
Location: GMT-05:00
Advertisement
Register to Remove


  • Similar Topics
    Replies
    Views
    Last post

Return to Infected? Virus, malware, adware, ransomware, oh my!



Who is online

Users browsing this forum: CrisYouSasyMedic1 and 56 guests

Contact us:

Advertisements do not imply our endorsement of that product or service. Register to remove all ads. The forum is run by volunteers who donate their time and expertise. We make every attempt to ensure that the help and advice posted is accurate and will not cause harm to your computer. However, we do not guarantee that they are accurate and they are to be used at your own risk. All trademarks are the property of their respective owners.

Member site: UNITE Against Malware